> Couldn't there be a kernel option (maybe tunable by /proc/something)> through wich the kernel could grant a limited amount of mlock-able> memory for each non-root process? This could default to 0 but be> increased when sensitive software is being used.

It needs to be per-user, not just per-process, but yes this would be auseful thing to do. The beancounter patches floating about alreadyimplement a lot of the necessary framework for this.

--Stephen

-To unsubscribe from this list: send the line "unsubscribe linux-kernel" inthe body of a message to majordomo@vger.rutgers.eduPlease read the FAQ at http://www.tux.org/lkml/